Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/94755878D2F711EF83265194762E951A.roa
File: 94755878D2F711EF83265194762E951A.roa (raw, json)
Hash identifier: 4giYGNdcTx0qFANWfF4M8CZizVOnu0u+qJRIloKH2Yw=
Subject key identifier: E1:D7:21:32:CB:A6:DB:B2:C1:D7:74:D9:14:80:DD:AA:05:79:33:02
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0107AD
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/94755878D2F711EF83265194762E951A.roa
Signing time: Wed 15 Jan 2025 04:17:06 +0000
ROA not before: Wed 15 Jan 2025 04:17:02 +0000
ROA not after: Mon 03 Jan 2028 04:17:02 +0000
asID: 17561
IP address blocks: 156.254.1.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67501 (0x107ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Jan 15 04:17:02 2025 GMT
Not After : Jan 3 04:17:02 2028 GMT
Subject: CN=678736c2-53c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:7a:04:b7:20:e4:d0:59:53:48:09:dd:e2:72:
11:d7:17:da:49:ad:4a:37:79:82:e0:a1:01:33:0d:
92:cb:9b:89:ce:b3:f8:ef:69:db:d2:88:0f:f6:14:
5b:a4:ab:b9:39:05:95:3c:72:64:10:33:24:df:95:
fc:63:03:5d:bf:b2:82:8b:06:49:db:32:e9:c6:1c:
ce:66:ac:fc:42:91:98:2b:31:c4:5e:34:8d:6f:55:
5a:e4:78:da:63:1a:43:b8:00:a7:47:cf:7d:4c:d6:
3f:0f:9c:f4:88:30:1f:37:ea:79:c6:c3:63:3b:62:
02:4d:4e:4a:dd:45:b0:d0:3e:8e:bb:b2:0d:a9:51:
d8:73:18:59:11:3b:95:77:9e:fb:ba:18:d7:80:a3:
a7:d2:b1:73:07:20:92:0a:55:d1:2e:6b:b4:b4:77:
93:c3:25:8b:69:2e:96:97:59:19:e3:23:55:15:53:
4b:eb:c3:e2:9a:bd:99:0c:05:5c:04:71:5a:1a:85:
e5:9c:67:ee:7b:79:fb:c9:7a:e9:d8:c0:fc:4c:82:
05:29:42:be:f1:18:b8:af:c5:3b:a4:2e:43:37:70:
1c:21:f1:70:f8:3a:06:4e:c8:81:08:92:ce:f8:4b:
c9:58:e2:5d:d7:e4:8c:7d:f3:6f:c4:c3:ee:a7:78:
7d:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:D7:21:32:CB:A6:DB:B2:C1:D7:74:D9:14:80:DD:AA:05:79:33:02
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/94755878D2F711EF83265194762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.254.1.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:1e:a7:21:5f:07:b2:3e:a7:8b:2c:c6:83:a9:32:4b:60:21:
d2:da:00:7d:96:68:7d:91:68:05:68:a1:12:23:00:42:54:b8:
8e:f2:d8:3d:ba:d5:2d:cf:7c:e3:48:92:4b:d2:95:d7:a5:cc:
28:5e:1e:33:92:b9:41:38:f4:00:db:03:ba:a1:cd:a3:29:ae:
3b:c0:28:1c:77:1e:29:d2:c3:5c:54:dc:7f:20:2c:ee:98:23:
f5:84:5d:79:f4:26:6c:8b:17:47:41:40:b2:53:5d:b4:66:fe:
f3:ad:fc:df:97:50:a2:13:f2:a5:17:f7:dd:2c:11:7f:ab:89:
ab:1d:8f:17:74:c9:99:44:8a:3e:97:f2:6c:0c:10:9c:57:81:
86:7b:0d:c2:2c:a2:dc:4c:ea:cc:8a:cc:8b:d5:6b:fd:85:0e:
d7:c6:14:d2:b5:26:4b:a9:02:20:41:33:68:cf:3d:cf:e9:cc:
c6:43:20:3d:bd:b1:e8:d4:24:fd:00:52:79:48:ee:a6:6b:0c:
9a:86:22:63:0f:3a:59:e2:8c:05:ff:24:dc:61:35:18:9d:3f:
f8:3b:84:2d:12:4c:30:db:ef:25:0d:6f:78:c6:94:4e:e1:66:
5e:a2:4e:b4:eb:08:a6:1c:67:ce:74:fa:08:f6:ce:49:2b:d0:
89:2f:c9:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 10:01:29 2025 by rpki-client